This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DF4A9778E56111EBB6ADAC1FC4F9AE02.roa File: DF4A9778E56111EBB6ADAC1FC4F9AE02.roa (raw, json) Hash identifier: Yyoino+oee7CjSsG4j8V96K95EyMSk1qfplqpVc5vtk= Subject key identifier: 48:CD:06:8D:2A:2F:B5:4B:6F:34:8D:9D:D4:48:86:B5:DD:4E:92:1A Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1A2B Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DF4A9778E56111EBB6ADAC1FC4F9AE02.roa Signing time: Thu 08 Jan 2026 17:13:50 +0000 ROA not before: Thu 08 Jan 2026 17:13:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24319 IP address blocks: 60.254.128.0/24 maxlen: 24 60.254.153.0/24 maxlen: 24 125.56.209.0/24 maxlen: 24 125.56.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 16:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6699 (0x1a2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A, serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 8 17:13:50 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695fe5ce-e386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d6:f7:79:b2:c4:ad:aa:73:09:1f:72:94:52: 75:56:e5:6e:6a:9f:7d:39:6f:ba:2a:19:6b:01:77: 8e:3f:05:44:2d:fa:7a:ee:72:2f:d7:fa:67:74:ed: 88:f4:51:dc:99:78:bf:91:f3:9f:b5:2e:85:d8:8e: c3:38:da:d1:fd:50:b3:85:cc:b3:a5:c0:f1:11:1d: 7d:90:55:c0:4a:1d:2f:58:2b:2d:93:6a:d4:fe:0f: 67:f8:27:23:2f:8e:50:2c:33:62:b3:dc:ff:15:ea: 42:35:b9:d4:82:4d:bf:cb:07:7f:51:8d:98:d5:d8: 75:94:ce:34:5d:63:75:10:bf:7d:0a:e3:a4:4b:f1: fb:25:e5:71:c8:20:cb:df:f7:b0:02:97:76:12:59: b6:3b:0d:d5:fb:f1:46:03:5e:75:56:95:b8:68:c3: 47:4e:0a:ab:ab:37:f6:d2:40:58:11:51:a6:57:fd: 83:a2:53:ae:a8:25:47:b3:35:38:29:3d:f5:42:4e: a2:2e:7b:1f:79:e4:5c:16:cd:9a:cb:6e:b2:b3:56: 25:43:0f:9c:d5:df:c6:24:76:0d:9f:05:82:7a:1a: 93:fa:56:5b:b0:4f:dd:8c:2d:3f:6c:dd:4b:54:6e: 6e:8b:05:0d:f8:6b:e2:32:26:35:ba:b1:da:15:01: 32:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CD:06:8D:2A:2F:B5:4B:6F:34:8D:9D:D4:48:86:B5:DD:4E:92:1A X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DF4A9778E56111EBB6ADAC1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 60.254.128.0/24 60.254.153.0/24 125.56.209.0/24 125.56.217.0/24 Signature Algorithm: sha256WithRSAEncryption 55:33:56:67:35:57:d6:2f:53:e5:2f:2f:25:9b:ee:b2:7d:18: bd:e7:4c:8c:d4:2c:57:e0:1e:f9:87:7e:a3:f8:6b:4d:cc:8e: 6f:bc:4e:23:45:52:37:03:d7:7b:1b:82:12:b6:a5:3d:b3:ac: 18:8c:ae:df:17:a3:5d:2c:ed:4b:90:d6:9e:57:a3:12:b0:7e: a0:40:d8:0d:66:b6:c5:55:a5:1f:3d:93:97:29:18:b3:1a:5a: 01:74:37:a6:73:31:28:d0:7e:a0:48:0c:a6:66:f7:97:40:e8: aa:96:3d:f8:03:dd:be:48:0d:84:da:92:bd:37:3c:e7:7c:1b: 60:1f:df:4b:85:cd:f5:70:f2:c1:c9:32:dc:42:55:82:74:bf: 29:a2:36:1f:48:0a:02:54:2d:4f:05:b6:f6:18:3f:33:51:09: 1f:51:9d:fe:f2:11:20:71:ec:18:ba:09:dd:a3:e1:cc:6b:d5: 51:72:a6:67:50:db:68:f7:23:c1:36:0d:c8:b2:50:c2:a1:de: d3:3f:1e:79:e3:e6:2e:60:96:a1:e7:9e:55:e4:d8:0c:0a:72: 5c:04:cf:df:9b:ae:f3:ef:7f:00:02:f5:9a:c3:6c:7d:60:79: b0:80:d2:dc:5c:e1:fb:fb:79:61:1f:2f:a5:6f:17:30:80:67: 93:90:d7:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICGiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjYwMTA4MTcxMzUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVmZTVjZS1lMzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9b3ebLErapzCR9ylFJ1VuVuap99OW+6KhlrAXeOPwVELfp67nIv1/pndO2I 9FHcmXi/kfOftS6F2I7DONrR/VCzhcyzpcDxER19kFXASh0vWCstk2rU/g9n+Ccj L45QLDNis9z/FepCNbnUgk2/ywd/UY2Y1dh1lM40XWN1EL99CuOkS/H7JeVxyCDL 3/ewApd2Elm2Ow3V+/FGA151VpW4aMNHTgqrqzf20kBYEVGmV/2DolOuqCVHszU4 KT31Qk6iLnsfeeRcFs2ay26ys1YlQw+c1d/GJHYNnwWCehqT+lZbsE/djC0/bN1L VG5uiwUN+GviMiY1urHaFQEyfwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFEjNBo0q L7VLbzSNndRIhrXdTpIaMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvREY0QTk3NzhF NTYxMTFFQkI2QURBQzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAA8/oADBAA8/pkDBAB9ONEDBAB9ONkwDQYJKoZIhvcNAQEL BQADggEBAFUzVmc1V9YvU+UvLyWb7rJ9GL3nTIzULFfgHvmHfqP4a03Mjm+8TiNF UjcD13sbghK2pT2zrBiMrt8Xo10s7UuQ1p5XoxKwfqBA2A1mtsVVpR89k5cpGLMa WgF0N6ZzMSjQfqBIDKZm95dA6KqWPfgD3b5IDYTakr03POd8G2Af30uFzfVw8sHJ MtxCVYJ0vymiNh9ICgJULU8FtvYYPzNRCR9Rnf7yESBx7Bi6Cd2j4cxr1VFypmdQ 22j3I8E2DciyUMKh3tM/Hnnj5i5glqHnnlXk2AwKclwEz9+brvPvfwAC9ZrDbH1g ebCA0txc4fv7eWEfL6VvFzCAZ5OQ18c= -----END CERTIFICATE-----Generated at Wed Jan 21 16:09:20 2026 by rpki-client